$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/8B3FB092C2AC11EAB23E1C3AC4F9AE02.roa File: 8B3FB092C2AC11EAB23E1C3AC4F9AE02.roa (raw, json) Hash identifier: gOCw5zLl7y7h+UWFzAOSwX3oI4JmJwwAJxjqn+jEKuo= Subject key identifier: C8:74:94:F9:45:E5:4D:15:45:24:60:07:AE:CF:A8:95:C1:FD:C0:1D Certificate issuer: /CN=A91EF73C/serialNumber=C0A5434937AC2900682916A5FBEE1543CE0B08A7 Certificate serial: 088D Authority key identifier: C0:A5:43:49:37:AC:29:00:68:29:16:A5:FB:EE:15:43:CE:0B:08:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wKVDSTesKQBoKRal--4VQ84LCKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/8B3FB092C2AC11EAB23E1C3AC4F9AE02.roa Signing time: Wed 24 Jul 2024 21:19:19 +0000 ROA not before: Wed 24 Jul 2024 21:19:19 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 137443 IP address blocks: 103.151.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.crl rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wKVDSTesKQBoKRal--4VQ84LCKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2189 (0x88d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF73C/serialNumber=C0A5434937AC2900682916A5FBEE1543CE0B08A7 Validity Not Before: Jul 24 21:19:19 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66a16fd7-3617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:50:52:af:42:34:f5:f2:ea:df:56:4e:46:b5: 96:08:57:f2:dc:ba:bb:f1:38:7c:37:de:e2:bf:82: 8c:1c:d6:8c:8a:8f:3b:9e:d4:45:5d:8f:e7:45:65: ed:7f:71:9c:b1:72:a9:73:f6:f9:88:42:5f:9e:1a: 44:51:98:fd:b4:3d:f6:d9:7d:83:2b:1a:b6:f3:00: c2:80:9c:51:f9:b5:a5:98:c9:f9:dc:46:f2:08:58: 9a:3a:d9:37:d4:99:e2:36:61:44:80:10:d5:86:6a: e3:19:4e:d9:b1:a4:6b:69:d3:a4:34:2e:ae:4f:13: 72:76:4f:60:4d:41:56:49:80:8b:42:e3:b3:21:6f: a8:5b:ab:46:7c:70:de:2a:b6:26:6e:12:73:c1:c1: e8:0e:b1:28:b4:41:1f:3c:5d:f1:6f:9c:67:55:1e: 45:c3:43:af:1c:73:c1:fd:68:23:8e:e2:e9:ae:f5: 36:64:5b:35:2f:2e:44:91:dc:ce:8a:7c:2f:fe:2c: d5:99:bb:44:df:fb:5d:3d:31:07:26:f9:57:74:e2: be:e3:33:2d:11:5a:a0:04:fe:ad:cb:53:46:37:ff: aa:d1:cd:cd:f2:44:42:bb:9d:cd:89:3c:1c:08:af: c2:42:10:19:9c:49:f4:9c:0c:d0:0c:64:a3:71:05: 62:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:74:94:F9:45:E5:4D:15:45:24:60:07:AE:CF:A8:95:C1:FD:C0:1D X509v3 Authority Key Identifier: keyid:C0:A5:43:49:37:AC:29:00:68:29:16:A5:FB:EE:15:43:CE:0B:08:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/wKVDSTesKQBoKRal--4VQ84LCKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wKVDSTesKQBoKRal--4VQ84LCKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF73C/ED068BB8A49111EAB257942DC4F9AE02/8B3FB092C2AC11EAB23E1C3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.216.0/23 Signature Algorithm: sha256WithRSAEncryption 62:e7:74:30:3f:48:1a:e0:06:4e:d1:5a:03:d2:21:cf:84:2e: b8:38:67:4f:78:c9:66:46:f3:7a:27:f6:83:ad:4b:d2:6e:01: 43:1a:86:e2:0c:a1:71:c6:4f:56:f3:10:4c:b7:40:4f:b9:53: 8f:09:71:84:05:b7:52:06:2a:19:c7:20:d1:0b:4e:4c:0f:ff: 46:88:f7:f5:ce:6b:6b:5d:fc:48:e8:0d:e7:9d:be:ae:be:88: 39:f5:e2:03:08:c0:c9:b6:1d:fe:ee:16:c1:03:38:f6:87:21: 24:9e:d6:b6:81:32:a4:a6:ab:0a:51:60:b4:44:fb:7c:65:69: 20:ed:50:63:1e:24:cd:35:60:16:ac:0f:0a:44:21:04:b9:a4: 90:bf:c7:9e:62:bb:40:af:39:4f:83:05:72:a6:98:6d:20:38: ab:59:a1:97:29:41:30:68:1a:21:b2:86:1d:0c:e7:56:fa:48: af:14:f5:d7:33:50:22:98:8a:4d:fc:16:6a:50:0e:02:c4:04: db:86:c1:fc:dd:b6:45:e3:b1:af:1b:53:6b:c6:a7:ed:ca:6f: 77:ad:3d:ae:9c:0f:c7:ac:6d:ec:19:dc:a8:39:cc:09:4a:2d: d8:fb:66:12:80:c4:6b:0e:6e:b2:48:76:9f:65:ee:4c:76:85: 44:6c:96:69 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY3M0MxMTAvBgNVBAUTKEMwQTU0MzQ5MzdBQzI5MDA2ODI5MTZBNUZCRUUxNTQz Q0UwQjA4QTcwHhcNMjQwNzI0MjExOTE5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExNmZkNy0zNjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslBSr0I09fLq31ZORrWWCFfy3Lq78Th8N97iv4KMHNaMio87ntRFXY/nRWXt f3GcsXKpc/b5iEJfnhpEUZj9tD322X2DKxq28wDCgJxR+bWlmMn53EbyCFiaOtk3 1JniNmFEgBDVhmrjGU7ZsaRradOkNC6uTxNydk9gTUFWSYCLQuOzIW+oW6tGfHDe KrYmbhJzwcHoDrEotEEfPF3xb5xnVR5Fw0OvHHPB/WgjjuLprvU2ZFs1Ly5EkdzO inwv/izVmbtE3/tdPTEHJvlXdOK+4zMtEVqgBP6ty1NGN/+q0c3N8kRCu53NiTwc CK/CQhAZnEn0nAzQDGSjcQVi6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFMh0lPlF 5U0VRSRgB67PqJXB/cAdMB8GA1UdIwQYMBaAFMClQ0k3rCkAaCkWpfvuFUPOCwin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjczQy9FRDA2OEJCOEE0 OTExMUVBQjI1Nzk0MkRDNEY5QUUwMi93S1ZEU1Rlc0tRQm9LUmFsLS00VlE4NExD S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dLVkRTVGVzS1FCb0tSYWwtLTRWUTg0TENLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUY3M0MvRUQwNjhCQjhBNDkxMTFFQUIyNTc5NDJEQzRGOUFFMDIvOEIzRkIwOTJD MkFDMTFFQUIyM0UxQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnl9gwDQYJKoZIhvcNAQELBQADggEBAGLndDA/SBrgBk7R WgPSIc+ELrg4Z094yWZG83on9oOtS9JuAUMahuIMoXHGT1bzEEy3QE+5U48JcYQF t1IGKhnHINELTkwP/0aI9/XOa2td/EjoDeedvq6+iDn14gMIwMm2Hf7uFsEDOPaH ISSe1raBMqSmqwpRYLRE+3xlaSDtUGMeJM01YBasDwpEIQS5pJC/x55iu0CvOU+D BXKmmG0gOKtZoZcpQTBoGiGyhh0M51b6SK8U9dczUCKYik38FmpQDgLEBNuGwfzd tkXjsa8bU2vGp+3Kb3etPa6cD8esbewZ3Kg5zAlKLdj7ZhKAxGsObrJIdp9l7kx2 hURslmk= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:48 2024 by rpki-client on console-fra.rpki-client.org